$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/618a9077-9875-4733-92d2-ae2d23ca0604.roa File: 618a9077-9875-4733-92d2-ae2d23ca0604.roa (raw, json) Hash identifier: tjWVWlY6c+R7v0XIzjRXxf4P72qP1Qa+iJSCbDbe0J8= Subject key identifier: FF:46:34:EE:21:53:32:41:B2:E6:13:AE:C7:ED:21:B3:B1:9F:70:A5 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 35EA3AD30FCB0E820D5ABF740B80B94F82FFFDBB Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/618a9077-9875-4733-92d2-ae2d23ca0604.roa Signing time: Fri 31 Oct 2025 02:08:15 +0000 ROA not before: Fri 31 Oct 2025 02:08:15 +0000 ROA not after: Fri 05 Dec 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:3fb0::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 19 Nov 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:ea:3a:d3:0f:cb:0e:82:0d:5a:bf:74:0b:80:b9:4f:82:ff:fd:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Oct 31 02:08:15 2025 GMT Not After : Dec 5 23:59:59 2025 GMT Subject: serialNumber=3a15e0921a47435d01c362426322292cb9b9f297b924fdb7332003d8e62e4af1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f4:ce:8a:36:7a:41:35:35:63:08:a3:42:b5: b3:5b:e6:ef:e7:ad:3c:71:1f:f3:53:a4:8a:41:44: 43:5d:ca:15:96:1b:c8:b7:c5:04:87:77:0b:3d:9b: df:39:26:19:39:fc:0e:b6:a9:e5:f6:70:d0:e7:ce: 0c:06:04:3b:4e:65:d8:cc:3c:57:c2:0c:65:0d:73: 0c:90:af:22:4e:05:80:ce:c6:48:af:65:eb:80:15: 57:ac:bf:aa:25:6e:af:cd:4d:60:49:b3:fb:7e:9d: 47:a8:f6:5f:c9:c5:de:7b:9a:2b:76:19:b1:f9:1f: 94:2a:a5:35:e0:30:28:8f:ec:0b:03:0d:0a:55:4c: d6:db:10:29:6b:eb:dd:8d:77:1f:23:cd:55:2d:54: f1:18:c1:3e:6f:25:64:08:ef:bc:4d:c6:36:26:bc: ba:58:43:19:65:77:de:ea:a1:5b:41:8a:f1:a7:ac: c5:05:7f:87:f8:63:6e:0d:39:75:a7:a2:01:c9:be: 3e:ea:87:be:e6:9c:fc:72:2d:c3:d7:f6:28:2c:a7: c9:ad:61:e9:29:5c:e7:62:00:9b:16:2b:5b:9d:75: 09:dc:8c:41:dd:d3:63:57:82:aa:f5:7d:33:b4:c2: 48:70:c4:4f:59:96:aa:88:dd:a3:17:e9:9b:cc:db: dc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:46:34:EE:21:53:32:41:B2:E6:13:AE:C7:ED:21:B3:B1:9F:70:A5 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/618a9077-9875-4733-92d2-ae2d23ca0604.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:3fb0::/47 Signature Algorithm: sha256WithRSAEncryption 41:02:9d:56:d9:17:51:a5:43:e1:ad:7d:3b:db:dc:f9:fc:03: 27:d1:5f:05:39:84:89:12:c1:5a:3c:45:f2:6b:ad:4a:f1:51: d4:99:5b:5f:12:a0:e7:cd:4c:34:16:ef:7a:be:ca:da:d2:3d: 68:1f:04:c6:43:ec:69:64:a0:9f:5a:69:cd:a3:db:16:26:57: f9:a5:82:09:a7:ef:e5:10:33:ea:ba:89:ff:a3:9b:cc:14:b2: 27:13:0a:2d:fe:22:5c:4d:0e:12:75:11:80:b3:21:f1:04:49: 4a:86:cf:98:36:6d:c0:c9:3a:78:3c:78:83:3e:6c:16:04:2b: 59:03:a9:e0:d4:28:22:7c:50:71:94:87:4f:ce:a1:c4:2c:92: a5:4a:79:e2:b3:d1:11:86:b2:35:62:96:0b:e7:c5:cb:ec:2d: 36:c4:bb:91:f4:9d:87:3b:ab:1d:39:a4:c2:d1:31:a3:d7:8f: c7:b4:b0:56:aa:ea:50:7e:4c:26:b4:ac:ac:02:ab:e4:28:9d: 81:17:0e:54:63:9a:9e:f0:70:85:7c:ce:32:ad:52:0f:7d:aa: e4:24:bd:f8:03:e1:0d:46:19:24:ce:eb:37:34:b1:81:80:65: e9:23:ac:b7:5d:8a:89:c4:11:64:9f:b1:f8:d9:05:17:f5:3b: 00:17:32:d0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNeo60w/LDoINWr90C4C5T4L//bswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUxMDMxMDIwODE1WhcNMjUxMjA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTE1ZTA5MjFhNDc0MzVkMDFjMzYyNDI2MzIyMjkyY2I5 YjlmMjk3YjkyNGZkYjczMzIwMDNkOGU2MmU0YWYxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ9M6KNnpBNTVjCKNCtbNb5u/nrTxxH/NTpIpBRENdyhWW G8i3xQSHdws9m985Jhk5/A62qeX2cNDnzgwGBDtOZdjMPFfCDGUNcwyQryJOBYDO xkivZeuAFVesv6olbq/NTWBJs/t+nUeo9l/Jxd57mit2GbH5H5QqpTXgMCiP7AsD DQpVTNbbEClr692Ndx8jzVUtVPEYwT5vJWQI77xNxjYmvLpYQxlld97qoVtBivGn rMUFf4f4Y24NOXWnogHJvj7qh77mnPxyLcPX9igsp8mtYekpXOdiAJsWK1uddQnc jEHd02NXgqr1fTO0wkhwxE9ZlqqI3aMX6ZvM29xJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/0Y07iFTMkGy5hOux+0hs7GfcKUwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1LzYxOGE5MDc3LTk4NzUtNDczMy05MmQyLWFlMmQyM2NhMDYwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAJAAP7AwDQYJKoZIhvcNAQELBQADggEBAEECnVbZF1GlQ+GtfTvb3Pn8 AyfRXwU5hIkSwVo8RfJrrUrxUdSZW18SoOfNTDQW73q+ytrSPWgfBMZD7GlkoJ9a ac2j2xYmV/mlggmn7+UQM+q6if+jm8wUsicTCi3+IlxNDhJ1EYCzIfEESUqGz5g2 bcDJOng8eIM+bBYEK1kDqeDUKCJ8UHGUh0/OocQskqVKeeKz0RGGsjVilgvnxcvs LTbEu5H0nYc7qx05pMLRMaPXj8e0sFaq6lB+TCa0rKwCq+QonYEXDlRjmp7wcIV8 zjKtUg99quQkvfgD4Q1GGSTO6zc0sYGAZekjrLddionEEWSfsfjZBRf1OwAXMtA= -----END CERTIFICATE-----Generated at Tue Nov 18 08:24:44 2025 by rpki-client